$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1f34170-6148-462d-b1cc-53dafdb7dca0.roa File: f1f34170-6148-462d-b1cc-53dafdb7dca0.roa (raw, json) Hash identifier: XaUs+bTQOPEJ+85tGn2xHq9z/wiL0aM6Ij7BFty/KXg= Subject key identifier: 0B:E2:B3:2C:8B:69:D5:80:6F:94:5A:66:E4:72:A5:02:25:4C:D7:40 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5859078953E886D55D580279D3FBB13C20C76C36 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1f34170-6148-462d-b1cc-53dafdb7dca0.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 199.205.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:59:07:89:53:e8:86:d5:5d:58:02:79:d3:fb:b1:3c:20:c7:6c:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=642816b08efd36c32045b304a6c059e4545f6a50f59d8587ea31f671a6c45ec5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c1:a2:26:84:cc:55:4f:c1:0c:4c:6d:b8:0c: 03:36:68:66:52:0f:8c:12:61:4e:eb:71:06:2b:07: f0:b2:b3:a6:8e:86:d1:97:52:12:a2:83:a9:8c:55: 24:13:86:e6:69:38:b7:58:0b:dc:fc:98:11:9f:a8: 8a:15:5d:0b:9c:d8:f8:13:ab:2a:6c:b6:1f:aa:38: 42:61:3a:c7:9f:3a:96:bd:53:4b:b4:67:94:7b:ec: 36:2b:0f:50:ad:3d:d1:58:4a:24:ea:13:7a:9d:8d: 67:cc:67:3b:5d:a3:eb:cc:94:a3:ec:d2:40:af:6e: 9e:b7:ce:3a:81:e6:96:e6:12:4a:eb:eb:38:04:96: 8f:40:55:2f:08:f8:de:f0:13:f7:e2:e3:e2:33:f4: d2:ac:bb:3c:95:1f:1b:16:42:85:3c:22:c4:94:6d: 1f:92:87:e8:9d:dd:98:e8:6f:b2:a0:7b:2c:6b:29: f4:dd:c3:e0:20:39:68:23:ef:b5:c7:20:82:f5:30: c1:ef:66:d9:32:be:5f:3f:42:13:69:83:df:6b:1a: b1:c4:9e:4a:ba:f8:3d:b8:6b:57:94:a3:92:46:32: 01:33:c8:d3:ef:6d:d2:69:72:ee:ab:b4:a1:fe:d2: bb:4d:0c:50:1e:e6:42:69:6f:74:4c:0f:b4:72:8e: d7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E2:B3:2C:8B:69:D5:80:6F:94:5A:66:E4:72:A5:02:25:4C:D7:40 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1f34170-6148-462d-b1cc-53dafdb7dca0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.205.0.0/16 Signature Algorithm: sha256WithRSAEncryption 01:7f:21:32:41:94:21:d5:a4:b9:79:1a:c8:21:02:c3:c1:44: 90:73:e1:33:eb:b8:d7:8b:01:2a:59:d2:41:ec:69:7c:d6:f6: 38:c9:2c:b0:5b:f5:1c:45:80:0e:c4:bc:8d:a4:01:40:82:18: 8e:aa:a7:11:2e:ff:a6:44:19:1f:6d:3e:68:f7:a7:b6:ac:86: c2:69:07:40:38:bc:8c:16:78:f3:e7:e0:33:99:a7:26:c4:83: 40:bf:42:79:f7:c6:f3:c0:46:a6:5e:e9:22:b8:1f:7a:43:fd: 17:3c:be:47:e2:65:1b:99:07:9b:ef:0e:04:08:f5:00:7d:79: 08:a2:1f:33:2d:3d:2b:b0:3c:5e:41:d8:77:29:10:98:0c:51: bf:b5:b0:2c:00:9f:29:18:2e:42:ed:46:a0:5d:91:d0:c1:69: 30:d2:1d:23:1a:f2:29:3b:9b:64:8f:30:19:3b:be:2f:9a:19: 4b:ff:10:e9:c4:54:8b:5c:a2:a7:45:d7:ba:6b:01:6f:6c:6b: 04:ea:f6:9c:67:c4:75:41:f4:da:ad:18:86:96:cc:36:22:4e: e8:a7:0f:e9:fb:02:a7:c0:d7:5a:42:38:bc:5c:25:4e:89:c3: eb:d3:2d:2d:22:a1:c3:a8:a8:00:9f:d9:48:3d:67:97:70:9e: 20:3b:3c:59 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWFkHiVPohtVdWAJ50/uxPCDHbDYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDI4MTZiMDhlZmQzNmMzMjA0NWIzMDRhNmMwNTllNDU0 NWY2YTUwZjU5ZDg1ODdlYTMxZjY3MWE2YzQ1ZWM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7waImhMxVT8EMTG24DAM2aGZSD4wSYU7rcQYrB/Cys6aO htGXUhKig6mMVSQThuZpOLdYC9z8mBGfqIoVXQuc2PgTqypsth+qOEJhOsefOpa9 U0u0Z5R77DYrD1CtPdFYSiTqE3qdjWfMZztdo+vMlKPs0kCvbp63zjqB5pbmEkrr 6zgElo9AVS8I+N7wE/fi4+Iz9NKsuzyVHxsWQoU8IsSUbR+Sh+id3Zjob7Kgeyxr KfTdw+AgOWgj77XHIIL1MMHvZtkyvl8/QhNpg99rGrHEnkq6+D24a1eUo5JGMgEz yNPvbdJpcu6rtKH+0rtNDFAe5kJpb3RMD7RyjtcRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUC+KzLItp1YBvlFpm5HKlAiVM10AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxZjM0MTcwLTYxNDgtNDYyZC1iMWNjLTUzZGFmZGI3ZGNhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDHzTANBgkqhkiG9w0BAQsFAAOCAQEAAX8hMkGUIdWkuXkayCECw8FEkHPh M+u414sBKlnSQexpfNb2OMkssFv1HEWADsS8jaQBQIIYjqqnES7/pkQZH20+aPen tqyGwmkHQDi8jBZ48+fgM5mnJsSDQL9CeffG88BGpl7pIrgfekP9Fzy+R+JlG5kH m+8OBAj1AH15CKIfMy09K7A8XkHYdykQmAxRv7WwLACfKRguQu1GoF2R0MFpMNId IxryKTubZI8wGTu+L5oZS/8Q6cRUi1yip0XXumsBb2xrBOr2nGfEdUH02q0YhpbM NiJO6KcP6fsCp8DXWkI4vFwlTonD69MtLSKhw6ioAJ/ZSD1nl3CeIDs8WQ== -----END CERTIFICATE-----Generated at Thu May 9 01:25:52 2024 by rpki-client on console-fra.rpki-client.org